4 matches found
CVE-2020-25095
LogRhythm Platform Manager PM 7.4.9 allows CSRF. The Web interface is vulnerable to Cross-site WebSocket Hijacking CSWH. If a logged-in PM user visits a malicious site in the same browser session, that site can perform a CSRF attack to create a WebSocket from the victim client to the vulnerable P...
CuteNews 1.4.6 - 'search.php' Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/36971/info CuteNews and UTF-8 CuteNews are prone to multiple vulnerabilities, including cross-site scripting, HTML-injection, information-disclosure, arbitrary-script-injection, and security-bypass issues. Note that exploits for some of the issues may...
RBExplorer 1.0 (Hijacking Command) Denial of Service Exploit
No description provided by source. !usr/bin/perl RBExplorer Hijack Command Exploit ---------------------------------------------- Infam0us Gr0up - Securiti Research Info: infamous.2hell.com Vendor URL: http://www.kabrian.com /[email protected] use IO::Socket; if @ARGV != 3 print "\n RBExplorer...
RBExplorer 1.0 (Hijacking Command) Denial of Service Exploit
Exploit for unknown platform in category dos / poc ============================================================ RBExplorer 1.0 Hijacking Command Denial of Service Exploit ============================================================ !usr/bin/perl RBExplorer Hijack Command Exploit...